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DETAILED ACTION 
Continued Examination Under 37 CFR 1.114 

A request for continued examination under 37 CFR 1.1 14, including the fee set forth in 
37 CFR 1 .17(e), was filed in this application after final rejection. Since this application is 
eligible for continued examination under 37 CFR 1.114, and the fee set forth in 37 CFR 1.17(e) 
has been timely paid, the finality of the previous Office action has been withdrawn pursuant to 
37 CFR 1.1 14. Applicant's submission filed on 4/28/2009 has been entered. 

Response to Amendment 

Claims 6 and 15 have been cancelled. Claims 23-31 have been withdrawn from 
consideration. Applicant’s arguments/amendments with respect to pending claims 1-5, 7-14, and 
16-22 filed 4/1/2009 have been fully considered, but are moot in view of the new grounds of 
rejection (with the exception of one amended limitation argued below). 

Response to Arguments 

Applicants contend that Elazar et al. and Parks et al. fail to teach “wherein all operations 
carried out by resource sets operating in an interior of the buried nucleus are inaccessible for 
inspection without heroic means, said operations including deciphering of a key provided to the 
buried nucleus via the secure protocol.” Examiner respectfully disagrees. Elazar et al. teach that 
various operations may be disallowed based on the eligibility of the end user, hence allowed for 
authorized users and disallowed for unauthorized end users, i.e. suspended upon detection of an 
intrusion (par. 36). Elazar et al. also teach that the non-volatile storage, i.e. resource set as 
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defined on page 12, par. 39 in Applicant’s specification, prevents access to various portions such 
as cryptographic keys which would be used for deciphering operations (par. 30). Therefore, 
Elazar et al. teach the limitation “wherein all operations carried out by resource sets operating in 
an interior of the buried nucleus are inaccessible for inspection without heroic means, said 
operations including deciphering of a key provided to the buried nucleus via the secure 
protocol.” 



Claim Rejections - 35 USC § 103 

I. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

II. Claims 1-22 are rejected under 35 U.S.C. 103(a) as being unpatentable over Elazar et al., 
US Pub. No. 2004/0039932, and further in view of Parks et al., US Patent No. 7,146,504 and 
Markham, US Pub. No. 2003/0126468. 



As per claim 1 : 

Elazar et al. teach a distributed architecture of an information handling system, 
comprising: a buried nucleus inaccessible for inspection without heroic means while said buried 
nucleus is in operation (par. 26 and par. 30), said buried nucleus including at least one matrix 
multiplier (par. 33, par. 35, and par. 39); and a trusted authority for generating a secure protocol, 
said secure protocol controlling operation of said buried nucleus (par. 33), wherein authorization 
information is securely conveyed into the buried nucleus via the secure protocol, thereby causing 
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the buried nucleus to operate and return a result, the result utilizable for activating an authorized 
operation (par. 38-39), wherein operation of the buried nucleus is automatically suspended upon 
detection of an intrusion (par. 36), wherein all operations carried out by resource sets operating 
in an interior of the buried nucleus are inaccessible for inspection without a heroic means, said 
operations including deciphering of a key provided to the buried nucleus via the secure protocol 
(par. 30). 

Not explicitly disclosed is wherein the authorization information being processed by the 
buried nucleus when the buried nucleus is in operation, thereby making said authorization 
information and information relating to processing of said authorization information inaccessible 
for inspection without heroic means once said authorization information is conveyed to the 
buried nucleus. However, Parks et al. teach that a license is securely provided to the trusted 
computer component and that the license must be evaluated, where the information is processed 
in a manner that allows the user to easily circumvent the system, thereby preventing the user to 
make alterations (col. 4, line 63 - col. 5, line 5). Therefore, it would have been obvious to a 
person in the art at the time the invention was made to modify the method disclosed in Elazar et 
al. to process authorization information within the DRM component, i.e. buried nucleus, while it 
is in operation in order to render the information inaccessible to an attacker. This modification 
would have been obvious because a person having ordinary skill in the art, at the time the 
invention was made, would have been motivated to do so since Parks et al. suggest that sending 
the content key in encrypted form secures the key so that only that specific user device can 
obtain access to the digital content the user is authorized to access in col. 4, line 50 - col. 5, line 



17 and col. 5, lines 35-42. 
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Also not explicitly disclosed is wherein said trusted authority being in a vault and being 
configured for being operated according to at least one of: encryption measures and security 
measures. However, Markhem teaches that a server may use vault technologies in order to 
restrict access to the data within the vault thereby maintaining the server's security (par. 121). 
Therefore, it would have been obvious to a person in the art at the time the invention was made 
to modify the method disclosed in Elazar et al. to have the trusted authority in a vault to enhance 
security measures of the trusted authority. This modification would have been obvious because a 
person having ordinary skill in the art, at the time the invention was made, would have been 
motivated to do so since Markhem suggests that this notion of a vault for the server provides 
more stringent security checks thereby maintaining the system’s security in par. 121. 

As per claim 2: 

Elazar et al. and Parks et al. substantially teach the distributed architecture of claim 1 . 
Furthermore, Elazar et al. teach wherein said buried nucleus includes at least one LFSR (linear 
feedback shift register) (par. 25). 

As per claim 3 : 

Elazar et al. and Parks et al. substantially teach the distributed architecture of claim 1 . 
Furthermore, Elazar teach wherein said buried nucleus includes at least one reconfigurable core 
(par. 27). 

As per claim 4: 

Elazar et al. and Parks et al. substantially teach the distributed architecture of claim 1 . 
Furthermore, Elazar et al. teach wherein said buried nucleus includes at least one programmable 
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logic block (par. 27). 

As per claim 5: 

Elazar et al. and Parks et al. substantially teach the distributed architecture of claim 1 . 
Furthermore, Elazar et al. teach wherein said buried nucleus includes at least one non-volatile 
RAM (par. 27). 

As per claim 6: 

Elazar et al. and Parks et al. substantially teach the distributed architecture of claim 1 . 
Furthermore, Elazar et al. teach wherein said buried nucleus includes at least one matrix 
multiplier (par. 34). 

As per claim 7: 

Elazar et al. and Parks et al. substantially teach the distributed architecture of claim 1 . 
Furthermore, Elazar et al. teach wherein said trusted authority is a back-end secure server (par. 
33). 

As per claim 8: 

Elazar et al. and Parks et al. substantially teach the distributed architecture of claim 1 . 
Furthermore, Elazar et al. teach wherein said trusted authority is a cell phone operator with a 
trusted command and control center (par. 29). 

As per claim 9: 

Elazar et al. and Parks et al. substantially teach the distributed architecture of claim 1 . 
Furthermore, Elazar et al. teach wherein said trusted authority is an encrypted medium (par. 33). 
As per claim 10: 
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Elazar et at. substantially teach a distributed architecture of an information handling 
system, comprising: (a) a hardware/software system, comprising: a microchip including an outer 
region having I/O pins and a buried nucleus inaccessible for inspection without heroic means 
when said buried nucleus is in operation (par. 26 and par. 30, said buried nucleus including at 
least one matrix multiplier (par. 33, par. 35, and par. 39); and external software connected to said 
I/O pins for controlling said I/O pins (par. 25); and (b) a trusted authority for generating a secure 
protocol, said secure protocol controlling operation of said hardware/software system (par. 36); 
(c) wherein said buried nucleus is equipped to accept a key delivered through said secure 
protocol (par. 35, lines 15-16), wherein said key is conveyed into the buried nucleus via the 
secure protocol, thereby causing the buried nucleus to operate and return a result, the result 
utilizable for activating an authorized operation (par. 38-39), wherein operation of the buried 
nucleus is automatically suspended upon detection of an intrusion (par. 36), wherein all 
operations carried out by resource sets operating in an interior of the buried nucleus are 
inaccessible for inspection without a heroic means, said operations including deciphering of a 
key provided to the buried nucleus via the secure protocol (par. 30). 

Not explicitly disclosed is wherein the buried nucleus is equipped to securely convey an 
encrypted key, decipher an encrypted key delivered through said secure protocol, and wherein 
the encrypted key being deciphered within the buried nucleus when the buried nucleus is in 
operation, thereby making the deciphering operation inaccessible for inspection without heroic 
means once said encrypted key is conveyed to the buried nucleus. However, Parks et al. teach 
that a trusted authority which supplies the protected digital content may also encrypt the key 
used to encrypt the digital content (col. 4, lines 59-61). Furthermore, Parks et al. teach that a 




Application/Control Number: 10/635,015 
Art Unit: 2437 



Page 8 



license is securely provided to the trusted computer component and that the license must be 
evaluated, where the information is processed in a manner that allows the user to easily 
circumvent the system, thereby preventing the user to make alterations (col. 4, line 63 - col. 5, 
line 5). Therefore, it would have been obvious to a person in the art at the time the invention was 
made to modify the method disclosed in Elazar et al. to encrypt the content key where the DRM 
component, i.e. buried nucleus, can decrypt the content key when it is delivered through a secure 
protocol and to decipher the encrypted key within the buried nucleus in order to make it 
inaccessible to an attacker. This modification would have been obvious because a person having 
ordinary skill in the art, at the time the invention was made, would have been motivated to do so 
since Parks et al. suggest that sending the content key in encrypted form secures the key so that 
only that specific user device can obtain access to the digital content the user is authorized to 
access in col. 4, line 50 - col. 5, line 17 and col. 5, lines 35-42. 

Also not explicitly disclosed is wherein said trusted authority being in a vault and being 
configured for being operated according to at least one of: encryption measures and security 
measures. However, Markhem teaches that a server may use vault technologies in order to 
restrict access to the data within the vault thereby maintaining the server's security (par. 121). 
Therefore, it would have been obvious to a person in the art at the time the invention was made 
to modify the method disclosed in Elazar et al. to have the trusted authority in a vault to enhance 
security measures of the trusted authority. This modification would have been obvious because a 
person having ordinary skill in the art, at the time the invention was made, would have been 
motivated to do so since Markhem suggests that this notion of a vault for the server provides 
more stringent security checks thereby maintaining the system’s security in par. 121 . 




Application/Control Number: 10/635,015 
Art Unit: 2437 



Page 9 



As per claim 1 1 : 

Elazar et al. and Parks et al. substantially teach the distributed architecture of claim 10. 
Furthermore, Elazar et al. teach wherein said buried nucleus includes at least one LFSR (linear 
feedback shift register) (par. 25). 

As per claim 12: 

Elazar et al. and Parks et al. substantially teach the distributed architecture of claim 10. 
Furthermore, Elazar et al. teach wherein said buried nucleus includes at least one reconfigurable 
core (par. 27). 

As per claim 13: 

Elazar et al. and Parks et al. substantially teach the distributed architecture of claim 10. 
Furthermore, Elazar et al. teach wherein said buried nucleus includes at least one programmable 
logic block (par. 27). 

As per claim 14: 

Elazar et al. and Parks et al. substantially teach the distributed architecture of claim 10. 
Furthermore, Elazar et al. teach wherein said buried nucleus includes at least one non-volatile 
RAM (par. 27). 

As per claim 15: 

Elazar et al. and Parks et al. substantially teach the distributed architecture of claim 10. 
Furthermore, Elazar et al. teach wherein said buried nucleus includes at least one matrix 
multiplier (par. 34). 

As per claim 16: 
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Elazar et at. and Parks et at. substantially teach the distributed architecture of claim 10. 
Not explicitly disclosed is wherein said encrypted key is encrypted with digital watermarking. 
However, Elazar et al. teach encrypting the actual content by adding overlay information. 
Therefore, it would have been obvious to a person in the art at the time the invention was made 
to modify the method disclosed in Elazar et al. to also use digital watermarking to encrypt the 
key. This modification would have been obvious because a person having ordinary skill in the 
art, at the time the invention was made, would have been motivated to do so since Elazar et al. 
suggest there are several possible ways to encrypt a document which may be used in order to 
secure and verify the contents which are encrypted in par. 36, lines 5-20. 

As per claim 17: 

Elazar et al. and Parks et al. substantially teach the distributed architecture of claim 10. 
Not explicitly disclosed is wherein said encrypted key is encrypted with a fast elliptical 
algorithm. However, Elazar et al. teach encrypting the actual content with a fast elliptical 
algorithm. Therefore, it would have been obvious to a person in the art at the time the invention 
was made to modify the method disclosed in Elazar et al. to also use a fast elliptical algorithm to 
encrypt the key. This modification would have been obvious because a person having ordinary 
skill in the art, at the time the invention was made, would have been motivated to do so since 
Elazar et al. suggest there are several possible encryption algorithms which may be used in order 
to secure the contents being encrypted in par. 35. 

As per claim 18: 

Elazar et al. and Parks et al. substantially teach the distributed architecture of claim 10. 
Not explicitly disclosed is wherein said encrypted key is encrypted with Triple DES. However, 




Application/Control Number: 10/635,015 
Art Unit: 2437 



Page 1 1 



Elazar et at. teach encrypting the actual content with Triple DES. Therefore, it would have been 
obvious to a person in the art at the time the invention was made to modify the method disclosed 
in Elazar et al. to also use a Triple DES to encrypt the key. This modification would have been 
obvious because a person having ordinary skill in the art, at the time the invention was made, 
would have been motivated to do so since Elazar et al. suggest there are several possible 
encryption algorithms which may be used in order to secure the contents being encrypted in par. 
35. 

As per claim 19: 

Elazar et al. and Parks et al. substantially teach the distributed architecture of claim 10. 
Not explicitly disclosed is wherein said encrypted key is encrypted with a Rijndael algorithm. 
However, Elazar et al. teach encrypting the actual content with AES. Therefore, it would have 
been obvious to a person in the art at the time the invention was made to modify the method 
disclosed in Elazar et al. to also use a Rijndael algorithm to encrypt the key. This modification 
would have been obvious because a person having ordinary skill in the art, at the time the 
invention was made, would have been motivated to do so since Elazar et al. suggest there are 
several possible encryption algorithms which may be used in order to secure the contents being 
encrypted in par. 35. 

As per claim 20: 

Elazar et al. and Parks et al. substantially teach the distributed architecture of claim 10. 
Furthermore, Elazar et al. teach wherein said trusted authority is a back-end secure server (par. 
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33). 

As per claim 21: 

Elazar et al. and Parks et al. substantially teach the distributed architecture of claim 10. 
Furthermore, Elazar et al. teach wherein said trusted authority is a cell phone operator with a 
trusted command and control center (par. 29). 

As per claim 22: 

Elazar et al. and Parks et al. substantially teach the distributed architecture of claim 10. 
Furthermore, Elazar et al. teach wherein said trusted authority is an encrypted medium (par. 33). 



* References Cited, Not Used 

The prior art made of record and not relied upon is considered pertinent to applicant's 
disclosure. 

1. US Patent No. 6,449,367 

2. US Pub. No. 2003/0226012 

3. US Pub. No. 2003/0007646 

4. US Pub. No. 2004/0054894 

5. US Pub. No. 2003/0191942 

6. US Pub. No. 2004/0064714 

7. US Patent No. 6,408,391 - specific to the added feature in the claims in the amendment filed 

10/20/2008 

8. US Pub. No. 2002/0161996 

9. US Patent No. 6,202,159 - uses vault technology provide a secure environment in a server 

10. US Pub. No. 2001/0044886 - mentions securing key servers within a physically secure 

environment such as a vault 

1 1 . US Patent No. 6,343,280 - physically secures a license server (equivalent to vault) 

The above references have been cited because they are relevant due to the manner in which the 



invention has been claimed. 
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Conclusion 

Any inquiry concerning this communication or earlier co mm unications from the examiner 
should be directed to Nadia Khoshnoodi whose telephone number is (571) 272-3825. The 
examiner can normally be reached on M-F: 8:00-4:30. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner’s 
supervisor, Emmanuel Moise can be reached on (571) 272-3865. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published 
applications may be obtained from either Private PAIR or Public PAIR. Status information 
for unpublished applications is available through Private PAIR only. For more information 
about the PAIR system, see http://pair-direct.uspto.gov. Should you have questions on access 
to the Private PAIR system, contact the Electronic Business Center (EBC) at 866-217-9197 
(toll-free). If you would like assistance from a USPTO Customer Service Representative or 
access to the automated information system, call 800-786-9199 (IN USA OR CANADA) or 
571-272-1000. 



/Nadia Khoshnoodi/ 
Examiner, Art Unit 2437 
6/5/2009 
NK 

/Emmanuel L. Moise/ 

Supervisory Patent Examiner, Art Unit 2437 




